Question No. 1

Refer to the exhibit.

In order for a FortiGate device to act as router on a stick, what configuration must an OT network architect implement on FortiGate to achieve inter-VLAN routing?

ASet a unique forward domain on each interface on the network.

BSet FortiGate to operate in transparent mode.

CSet a software switch on FortiGate to handle inter-VLAN traffic.

DSet a FortiGate interface with the switch to operate as an 802.1 q trunk.

Show Answer

Correct Answer: D

Question No. 2

What triggers Layer 2 polling of infrastructure devices connected in the network?

AA failed Layer 3 poll

BA matched security policy

CA matched profiling rule

DA linkup or linkdown trap

Show Answer

Correct Answer: D

Question No. 3

Refer to the exhibit.

PLC-3 and CLIENT can send traffic to PLC-1 and PLC-2. FGT-2 has only one software switch (SSW-1) connecting both PLC-3 and CLIENT. PLC-3 and CLIENT can send traffic to each other at the Layer 2 level.

What must the OT admin do to prevent Layer 2-level communication between PLC-3 and CLIENT?

ASet a unique forward domain for each interface of the software switch.

BCreate a VLAN for each device and replace the current FGT-2 software switch members.

CEnable explicit intra-switch policy to require firewall policies on FGT-2.

DImplement policy routes on FGT-2 to control traffic between devices.

Show Answer

Correct Answer: A, B

Question No. 4

An OT network architect must deploy a solution to protect fuel pumps in an industrial remote network. All the fuel pumps must be closely monitored from the corporate network for any temperature fluctuations.

How can the OT network architect achieve this goal?

AConfigure a fuel server on the remote network, and deploy a FortiSIEM with a single pattern temperature security rule on the corporate network.

BConfigure a fuel server on the corporate network, and deploy a FortiSIEM with a single pattern temperature performance rule on the remote network.

CConfigure a fuel server on the remote network, and deploy a FortiSIEM with a single pattern temperature performance rule on the corporate network.

DConfigure both fuel server and FortiSIEM with a single-pattern temperature performance rule on the corporate network.

Show Answer

Correct Answer: C

This way, FortiSIEM can discover and monitor everything attached to the remote network and provide security visibility to the corporate network

Question No. 5

Refer to the exhibit.

Given the configurations on the FortiGate, which statement is true?

AFortiGate is configured with forward-domains to reduce unnecessary traffic.

BFortiGate is configured with forward-domains to forward only domain controller traffic.

CFortiGate is configured with forward-domains to forward only company domain website traffic.

DFortiGate is configured with forward-domains to filter and drop non-domain controller traffic.

Show Answer

Correct Answer: A

Free Fortinet NSE7_OTS-7.2 Exam Actual Questions

The questions for NSE7_OTS-7.2 were last updated On Jan 17, 2025